Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Grav before 1.0.3 Remote Code Execution via File Upload Extension Bypass
Adobe Commerce | Unrestricted Upload of File with Dangerous Type (CWE-434)
code-projects Online Job Portal JobSeekerInsert.php unrestricted upload
ChurchCRM: Authenticated Remote Code Execution (RCE) via Malicious Plugin Upload
Laravel-Mediable < 7.0.0 File Upload RCE via Extension Bypass
WordPress Aimogen Pro plugin <= 2.8.3 - Arbitrary File Upload vulnerability
WordPress WoowBot Pro Max plugin <= 14.1.7 - Arbitrary File Upload vulnerability
SourceCodester Online Book Store System Book Image Upload Feature index.php books unrestricted upload
Ragic|Enterprise Cloud Database - Arbitrary File Upload
AREA 17 Twill CMS Media Library Insert FileLibraryController.php storeFile unrestricted upload
hcr707305003 shiroiAdmin FileController.php upload unrestricted upload
Parse Server 9.0.0 Stored XSS via malformed Content-Type
Joomla Extension - rsjoomla.com - Unauthenticated file upload in RSFiles component < 1.17.12
Joomla Extension - phoca.cz - Authenticated file upload in RSFiles component < 6.1.3
Swiss Toolkit For WP <= 1.4.6 - Authenticated (Author+) Arbitrary File Upload via upload_extension_files()
Instant Appointment <= 1.2 - Unauthenticated Arbitrary File Upload
Post Export Import with Media <= 1.13.1 - Authenticated (Administrator+) Arbitrary File Upload via Trailing-Dot Filename Bypass in ZIP Media Import
Super Forms <= 6.3.313 - Unauthenticated Arbitrary File Upload via 'data' Parameter (datauristring / value)
Joomla Extension - balbooa.com - Unauthenticated file upload in Balbooa Forms extension < 2.4.1
Blocksy Companion <= 2.1.46 - Unauthenticated Arbitrary File Upload via 'blc-review-images[]' Parameter
Showing 1 - 20 of 1,000+ results